
THAT WHICH IS CLAIMED IS: 

V I . A method of generating an RSA . cryptographic 
value \ the method comprising the steps of: 

obtaining user specific information about a user; 
and \ 

5 divicring the potential range of RSA prime values 

into at leaVt two subintervals; 

selecting a first user-dependent RSA prime from a 
range of RSA pVime values in a first of the at least 
two subintervalsy corresponding to a user specific range 
10 of values based crta the user specific information mapped 
onto the first subWerval. 

2. A method according to Claim 1, further 
comprising the steps of\ 

selecting a second lAser-dependent RSA prime from a 
range of RSA prime values Vn a second of the at least 
5 two subintervals, dif f erent\f rom the first subinterval, 
corresponding to the user specific range of values 
based on the user specific information mapped onto the 
second subinterval . \ 

3. A method according to ClVim 1, wherein the 
user specific range of values are mapped by linearly 
mapping' the user specific range of vauues onto the 
first subinterval. \ 

4. A method according to Claim 2, Vherein the 
user specific range of values are mapped onto the first 
subinterval and mapped onto the second subinterval 
utilizing the same mapping function. \ 



5. A method according to Claim 2, further 
comprising the step of generating a user-dependent RSA 
key varye from the first and second user-dependent 
primes . 

6. A\method according to Claim 1, wherein the 
RSA prime values comprise n bits and wherein the first 
subinterval conrorises RSA prime values from the set 

[y/2 (2 n_1 ) , 2 n ~ 1 +2 n \' 2 ] and the second subinterval 
5 comprises RSA prime\ values from the set 



7. A method according to claim 2, wherein the 
RSA prime values comprise ri bits and wherein the 
difference between the firstARSA prime and the second 
RSA prime is greater than 2 n ~ 2 , 

8 . A method according to ^Claim 3 , wherein the 
first subinterval comprises an interval [a,b], wherein 
the user specific range comprises afcri interval [c,d] and 
wherein the linear mapping function Comprises the 
function defined by, 
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9 . A method according to Claim 1 further 
rising the step of selecting a second RSA prime 
t3he potential range of RSA prime values. 

10. \ A method according to Claim 1, wherein the 
user specific information is biometric information. 

11. A rnethod according to Claim 1, wherein the 
user specif ic information is a globally unique user 
identification A 

12. A method according to Claim 1, wherein the 
step of selecting ak first user-dependent RSA prime 
comprises the steps \of : 

selecting a random point in the range of RSA prime 
values in the first suWnterval corresponding to the 
mapped user specific ranae of values; 

utilizing the randomvpoint as a starting point for 
a search for a prime numbeV (p) in the range of RSA 
prime values in the first susbinterval corresponding to 
the mapped user specific range of values. 

13. A method according to\ciaim 12, further 
comprising the steps of: \ 

determining if a candidate foor p is considered 
outside the range of RSA prime valiies in the first 
subinterval corresponding to the mapbed user specific 
range of values; \ 

selecting a new random point as a\search starting 
point if a candidate for p is considered outside the 
range of RSA prime values in the first subinterval 




10 Corresponding to the mapped user specific range of 
vVlues; and 

\ restarting the search for p utilizing the new 
random point . 

14 \ A system for generating an RSA cryptographic 
value, comprising: 

means \pr obtaining user specific information 
about a user ,\ and 
5 means f or\determining a user specific range of 

values based on Vhe user specific information; 

means for diwLding the potential range of RSA 
prime values into at least two subintervals; 



10 values onto a first of\ the at least two subintervals; 



means for. selecting\a first user-dependent RSA 
prime from the range of RSA prime values in the first 
of the at least two subinteVvals corresponding to the 
15 mapped user specific range o:f values. 

15. A system according t A Claim 14, further 
comprising: \ 

means for mapping the user specific range of 
values onto a second of the at leaat two subintervals, 
5 different from the first of the at ]Neast two 
subintervals; \ 

means for selecting a second uservdependent RSA 
prime from the range of RSA prime values in the second 
of the at least two subintervals corresponding to the 
10 mapped user specific range of values. \ 



means for mappi 



the user specific range of 



and 
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^6. A system according to Claim 15, wherein the 
means ]\or mapping comprises means for linearly mapping 
the useA specific range of values onto a first of the 
at least \wo subintervals . 



(bnV 5 



17. A s\stem according to Claim 16, wherein the 
means for mapping the user specific range of values 
onto a first of utie at least two subintervals and the 
means for mapping Vhe user specific range of values 
onto a second of tha at least two subintervals, 
different from the fdNrst of the at least two 
subintervals utilize tKe same mapping function. 



18. A system according to Claim 15, further 
comprising means for generating a user-dependent RSA 
key value from the first anc\ second user-dependent 
primes . 



19. A system according to Claim 14, wherein 
the RSA prime values comprise n &its and wherein the 
first subinterval comprises RSA. pr\ime values from the 



set 



n-1 , „ n-3/2 



) , 2 +2 



] and the second subinterval 



5 comprises RSA prime values from the se 



[2 n-l +2 n-3/2 f2 n ] 



20. A system according to claim 15, Wherein the 
RSA prime values comprise n bits and wherein the 
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difference between the first RSA prime and the second 
RSA Vrime is greater than 2 n_2 . 



a 



A system according to Claim 16, wherein the 
first suisjinterval comprises an interval [a,b], wherein 
the user Specific range comprises an interval [c,d] and 
wherein thA linear mapping function comprises the 
function defYned by, 



F ( x ) - u x + v \ 



where 



d-c 
b-a 



and 



bc~ad 
b-a 



22. A system according to Claim 14 further 
comprising means f or\select ing a second RSA prime from 
the potential range ofVRSA prime values. 

23. A system according to Claim 14, wherein the 
user specific information Us biometric information. 

24. A system according^ to Claim 14, wherein the 
user specific information is \p globally unique user 
identification . 



25. A system according to Gllaim 14, wherein the 
means for selecting a first user- dependent RSA prime 
comprises : 

means for selecting a random point in the range of 
RSA prime values in the first of the at least two 
subintervals corresponding to the mapped user specific 
range of values; 
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means for utilizing the random point as a starting 
point for a search for a prime number (p) in the range 
10 of Rs\ prime values in the first of the at least two 

subint^rvals corresponding to the mapped user specific 
range oft values. 
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26. i\ system according to Claim 25, further 
comprising : 

means f oA determining if a candidate for p is 
considered outsVde the range of RSA prime values in the 
first of the at Jveast two subintervals corresponding to 
the mapped user specific range of values; 

means for se lees ting a new random point as a search 
starting point if a candidate for p is considered 
outside the range of RiSA prime values in the first of 
the at least two subintesrvals corresponding to the 
mapped user specific rang^ of values; and 

means for restarting tlsje search for p utilizing 
the new random point 
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27. A computer program product for generating an 
RSA cryptographic value, comprising: 

a computer readable storage medium having computer 
readable program code means embodied in said medium, 
said computer readable program code means comprising: 

computer- readable program code metans for obtaining 
user specific information about a user,\ and 

computer- readable program code ■ mearfe for 
determining a user specific range of values based on 
the user specific information; 
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omputer- readable program code means for dividing 
the potential range of RSA prime values into at least 
two subWervals; 

computer- readable - program code means for mapping 
15 the user specific range of values onto a first of the 
at least two\ subintervals ; and 

computer\readable program code means for selecting 
a first user-defc>endent RSA prime from the range of RSA 
prime values in \he first of the at least two 



20 subintervals corresponding to the mapped user specific 
range of values . 

28. A computer p^pgram product according to Claim 

27 , further comprising : 

computer- readable program code means for mapping 
the user specific range of \values onto a second of the 
5 at least two subintervals, different from the first of 
the at least two subintervals\ 

computer- readable program \code means for selecting 
a second user- dependent RSA prime from the range of RSA 
prime values in the second of the at least two 
10 subintervals corresponding to the\mapped user specific 
range of values 

29. A computer program product \according to Claim 

28, wherein the computer- readable program code means 
for mapping comprises computer -readable\ program code 
means for linearly mapping the user specific range of 

5 values onto a first of the at least two s\ibintervals 

1 
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3u . A computer program product according to Claim 
29, wheVein the computer- readable program code means 
for mapping the user specific range of values onto a 
first of Ahe at least two subintervals and the 
computer-readable program code means for mapping the 
user specific range of values onto a second of the at 
least two sunintervals , different from the first of the 
at least two subintervals utilize the same mapping 
function . 

31. A computer program product according to Claim 
28, further comprising computer readable code means for 
generating a user-dependent RSA key value from the 
first and second user\dependent primes 



32 . A computer program product according to Claim 
26, wherein the RSA prime walues comprise n bits and 
wherein the first subinterval comprises RSA prime 



values from the set 2 n ~\) , 2 n ~ 1 +2 n ~ 3/2 ] and the second 



subinterval comprises RSA prime\ values from the set 



[2 n-1 +2 n ~ 3/2 , 2 n ] 



33 . A computer program product according to claim 
28, wherein the RSA prime values compriNse n bits and 
wherein the difference between the first\RSA prime and 
the second RSA prime is greater than 2 n ~ 2 . 
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i4 . A computer program product according to Claim 
29, wAerein the first subinterval comprises an interval 
[a,b] , yherein the user specific range comprises an 
interval\ [c, d] and wherein the linear mapping function 
comprises \the function defined by, 



F(x)=l^c + v , where u = 



d-c 
b-a 



and 



bc-ad 
b-a 



35. A computer program product according to Claim 
27 further composing computer-readable program code 
means for selecting a second RSA prime from the 
potential range of\ RSA prime values. 



36. A computer \program product according to Claim 
27, wherein the user Specific information is biometric 
information . 

37. A computer progVam product according to Claim 
27, wherein the user specific information is a globally- 
unique user identification. 



38. A computer program product according to Claim 
27, wherein the computer- readably program code means 
for selecting a first user-dependent RSA prime 
comprises : 

computer-readable program codeWeans for selecting 
a random point in the range of RSA pisime values in the 
first of the at least two subintervala corresponding to 
the mapped user specific range of value 
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computer- readable program code means for utilizing 



10 the\random point as a starting point for a search for a 
prime, number (p) in the range of RSA prime values in 
the fiVst of the at least two subintervals 
corresponding to the mapped user specific range of 
values \ 

39. A computer program product according to Claim 
3 8 , further comprising : 



- computer- readable program code means for 

determining if a (candidate for p is considered outside 
5 the range of RSA p^ime values in the first of the at 

least two subintervals corresponding to the mapped user 
specific range of values; 

computer- readable program code means for selecting 
a new random point as a search starting point if a 
10 candidate for p is considered outside the range of RSA 
prime values in the first o\f the at least two 
subintervals corresponding t© the mapped user specific 
range of values; and \ 



15 restarting the search for p utilizing the new random 
point . \ 

40. A method of generating a aryptographic value 
corresponding to a source entity, they method comprising 
the steps of : \ 



5 with the source entity; \ 

selecting a cryptographic value from\a range of 
cryptographic values based on the entity specific 




computer- readable program Vrode means for 



obtaining entity specific information associated 
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information, wherein the range of cryptographic values 
batsed on the entity specific information is disjoint 
10 witl^ ranges of cryptographic values associated with 
entity specific information associated with entities 
other ftjian the source entity. 




41. ^ method according to Claim 4 0 , wherein the 
entity speciSfic information comprises biometric 
information associated with a user. 

42. A method according to Claim 40, wherein the 
entity specific information comprises a globally unique 
user identification ^associated with a user. 



43. A method according to Claim 40, wherein the 
entity specific information comprises a company 
identification . 

44. A method accordingVto Claim 40, wherein the 
cryptographic value comprises Nan RSA key and wherein 
the step of selecting comprises\select ing the RSA key 
from a portion of the range of potential RSA key values 
based on the entity specific information, wherein 
portion of the range of potential RSJA key values is 
defined by mapping an entity specif iA range of values 
onto the range of potential key values\ 



45. A method according to Claim 40 \ further 
comprising the step of authenticating the ^ource entity 
of the cryptographic value by determining iY the 
cryptographic value is within the range of 
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cryptographic values based on the entity specific 
information associated with the source entity. 



C 

(tor 
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46. \A system for generating a cryptographic value 
corresponding to a source entity, comprising: 

means foV obtaining entity specific information 
associated witn\the source entity; 

means for selecting a cryptographic value from a 
range of cryptographic values based on the entity 
specific informations, wherein the range of 
cryptographic values Biased on the entity specific 
information is dis j ointA with ranges of cryptographic 
values associated with entity specific information 
associated with entities other than the source entity. 



47. A system according \o Claim 46, wherein the 
entity specific information comprises biometric 
information associated with a user. 

48. A system according to Claim 46, wherein the 
entity specific information comprises a globally unique 
user identification associated with ^ user, 

49. A system according to Claim ^6, wherein the 
entity specific information comprises a\ company 
identification . 



50. A system according to Claim 46, ^herein the 
cryptographic value comprises an RSA key an^l wherein 
the means for selecting comprises means for Selecting 
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t\he RSA key from a portion of the range of potential 
Rs\ key values based on the entity specific 
information, wherein portion of the range of potential 
RSA kVy values is defined by mapping an entity specific 
range oyf values onto the range of potential key values. 

51. \ system according to Claim 46, further 
comprising means for authenticating the source entity 
of the cryptographic value by determining if the 
cryptographic Value is within the range of 
cryptographic values based on the entity specific 
information associated with the source entity. 

52 . A computer^ program product for generating a 
cryptographic value corresponding to a source entity, 
comprising: \ 

a computer readable\ storage medium having computer 
readable program code mesons embodied in said medium, 
said computer readable program code means comprising: 

computer readable progVam code means for obtaining 
entity specific information Associated with the source 
entity; \ 

computer readable program \code means for selecting 
a cryptographic value from a range of cryptographic 
values based on the entity specimc information, 
wherein the range of cryptographic^ values based on the 
entity specific information is disjoint with ranges of 
cryptographic values associated witm entity specific 
information associated with entities other than the 
source entity. \ 
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53 . A computer program product according to Claim 
52, wherein the entity specific information comprises 
biometric information associated with a user. 




54 . \a computer program product according to Claim 
52, whereiA the entity specific information comprises a 
globally unique user identification associated with a 
user . 

55. A compoiter program product according to Claim 
52, wherein the entity specific information comprises a 
company identification . 
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56. A computer \program product according to Claim 
52, wherein the cryptographic value comprises an RSA 
key and wherein the computer readable program code 
means for selecting comprises computer readable program 
code means for selecting \the RSA key from a portion of 
the range of potential RSA key values based on the 
entity specific informationV wherein portion of the 
range of potential RSA key values is defined by mapping 
an entity specific range of values onto the range of 
potential key values. 



57. A computer program product according to Claim 
52, further comprising computer readable program code 
means for authenticating the sourceX entity of the 
cryptographic value by determining if the cryptographic 
value is within the range of cryptographic values based 
on the entity specific information associated with the 
source entity. 
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